fix(cosmwasm): coordinator migration defaults to multisig prover/chain map

[SDavidson1177]

Description

The multisig contract maintains a chain->prover map, and the coordinator maintains a separate prover->chain map. In order to keep these maps consistent after migration, the migration script will default to using the multsig's map if they differ.

How is This Done

The script now queries the multisig contract first when constructing the coordinator's migration message. During migration, the coordinator will default to using the prover/chain pair found in the multisig. This script assumes multisig version 2.3 has been deployed.

Reference

Corresponding change in Amplifier:
axelarnetwork/axelar-amplifier#1058

Testing

This has been tested both on a custom devnet, and on devnet-amplifier. The results of running this migration on devnet-amplifier have been saved to devnet-amplifier.json.

---

Note

Adds a multisig migration path (to v2.3.1) and upgrades the coordinator migration to sync prover mappings from multisig, enforce uniqueness, support ignoreChains/direct modes, and update docs/config accordingly.

• CosmWasm migration tooling:
  • Coordinator migration: refactors to use multisig as source for prover->chain, enforces uniqueness (provers/verifiers/gateways), supports ignoreChains, --direct, and fee param; updates titles to v2.1.1 and logs; camelCases types/vars.
  • New Multisig migration: adds multisig.ts with migration to v2.3.1; extracts default provers from config; supports direct/proposal execution and fee param.
  • CLI: migrate.ts adds ignoreChains and --direct; wires fee through; routes to coordinator or multisig migrators.
  • Types: replaces proposal with direct; adds ignoreChains.
• Config:
  • axelar-chains-config/info/devnet-amplifier.json: bumps Router/Multisig/Coordinator codeIds and proposal ids/hashes (reflecting new deployments).
• Docs:
  • releases/cosmwasm/2025-09-Coordinator-v2.1.0.md: marks devnet as completed, updates multisig to v2.3.1, revises migration steps to use new scripts/flags and notes ignoreChains caution.

^{Written by Cursor Bugbot for commit ca73407. This will update automatically on new commits. Configure here.}

Greptile Overview

Updated On: 2025-10-02 17:29:09 UTC

Summary

This PR addresses a critical data consistency issue between the multisig and coordinator contracts in the CosmWasm migration system. The multisig contract maintains a `chain->prover` mapping while the coordinator maintains a separate `prover->chain` mapping, which could become inconsistent during migrations.

The key change is refactoring the coordinator migration script to query the multisig contract first and use its mapping as the authoritative source when constructing the coordinator's migration message. This ensures both contracts will have consistent mappings after migration completes.

The implementation adds several safety mechanisms:

• A new ignoreChains parameter to exclude problematic chains during migration
• Duplicate detection logic to validate uniqueness constraints for provers, verifiers, and gateways
• Improved error handling with try-catch blocks to prevent single chain failures from blocking entire migrations
• Better robustness by combining gateway queries with multisig prover lookups in a single operation

The changes also include code cleanup (removing unused imports, renaming unused parameters) and documentation updates to reflect the new migration strategy. The devnet-amplifier configuration shows successful execution of this migration approach, updating contract code IDs for coordinator v2.1.0, multisig v2.3.1, and router v1.3.0.

Important Files Changed

Changed Files

Filename	Score	Overview
cosmwasm/migrate/coordinator.ts	4/5	Refactored coordinator migration to query multisig contract for authoritative chain-to-prover mapping and added duplicate detection logic
cosmwasm/migrate/types.ts	5/5	Added optional ignoreChains parameter to MigrationOptions interface for excluding chains during migration
cosmwasm/migrate/migrate.ts	4/5	Cleaned up unused imports, renamed unused parameter, and added ignoreChains option support to migration orchestrator
releases/cosmwasm/2025-09-Coordinator-v2.1.0.md	4/5	Updated documentation to reflect migration strategy changes, multisig version bump to v2.3.1, and completed devnet-amplifier deployment
axelar-chains-config/info/devnet-amplifier.json	4/5	Updated contract code IDs and proposal IDs showing successful coordinator migration execution on devnet-amplifier environment

Confidence score: 4/5

• This PR addresses a well-defined consistency problem with a logical solution that uses the multisig contract as the source of truth
• Score reflects good architectural approach and thorough testing, but complexity of migration logic requires careful review
• Pay close attention to the coordinator migration script and the empty "undefined" contract entry in devnet-amplifier.json that needs cleanup

Sequence Diagram

sequenceDiagram
    participant User
    participant Script as Migration Script
    participant Client as CosmWasm Client
    participant Router as Router Contract
    participant Multisig as Multisig Contract
    participant Coordinator as Coordinator Contract
    participant Governance as Governance System

    User->>Script: "Execute coordinator migration"
    Script->>Client: "Connect to CosmWasm client"
    
    Note over Script: Fetch chain configuration data
    Script->>Router: "Query chains from router"
    Router-->>Script: "Return chain endpoints"
    
    Note over Script: For each chain endpoint
    loop Process Chain Endpoints
        Script->>Client: "Query gateway config from chain"
        Client-->>Script: "Return verifier address"
        Script->>Multisig: "Query authorized prover for chain"
        Multisig-->>Script: "Return prover address"
        Script->>Script: "Build chain contract mapping"
    end
    
    Script->>Script: "Check for duplicate addresses"
    Note over Script: Validate uniqueness of provers, verifiers, gateways
    
    Script->>Script: "Construct migration message"
    Note over Script: Include router, multisig, and chain contracts
    
    alt Governance Proposal Mode
        Script->>Governance: "Submit migration proposal"
        Governance-->>Script: "Proposal submitted"
    else Direct Migration
        Script->>Client: "Execute direct migration"
        Client->>Coordinator: "Migrate to new code ID with message"
        Coordinator-->>Client: "Migration completed"
        Client-->>Script: "Migration successful"
    end
    
    Script-->>User: "Migration completed"

Loading

[greptile-apps]

_{5 files reviewed, 1 comment}

_{Edit Code Review Agent Settings | Greptile}

[kulikthebird]

Important change, thank you! Left some comments

[kulikthebird]

Use iterator

[kulikthebird]

camelCase

[kulikthebird]

Why not use the fee from migrate method argument?

[SDavidson1177]

Yep, I'll use that

[kulikthebird]

Same here

[kulikthebird]

camelCase

[kulikthebird]

Here and in other places in this PR

[kulikthebird]

Can you elaborate on this? Why the default_authorized_provers is not read automatically from the config if it's needed?

[kulikthebird]

Also it's important to take XRPL, Solana, Sui and Stellar Provers into account.

[SDavidson1177]

That's a good point. I'll modify it so that it is read from the config. I'll make sure it takes into account XRPL, Solana, Sui and Stellar